Default security checks for pkgsrc
Jan Lentfer
Jan.Lentfer at web.de
Sat Jan 23 12:28:43 PST 2010
Justin C. Sherrill schrieb:
/etc/daily and /etc/security in NetBSD now update and check against known
pkgsrc vulnerabilities if there's any packages installed on the system.
http://blog.netbsd.org/tnf/entry/new_package_security_checks
This would be a good idea for DragonFly too - anyone want to tackle it?
This is probably within my meager skills but not within my meager time
budget.
The diffs, to make it easier:
http://cvsweb.netbsd.org/bsdweb.cgi/src/etc/daily.diff?r1=1.72&r2=1.73&only_with_tag=MAIN&f=h
http://cvsweb.netbsd.org/bsdweb.cgi/src/etc/security.diff?r1=1.106&r2=1.107&only_with_tag=MAIN&f=h
Here is a patch that should incorporate this into daily security mails.
As this is my first work on periodic/security stuff I'd rather not
commit it right away but ask for review here.
Jan
Attachment:
pkgsrc_audit.patch
-------------- next part --------------
A non-text attachment was scrubbed...
Name: bin00000.bin
Type: application/octet-stream
Size: 3447 bytes
Desc: "Description: Binary data"
URL: <http://lists.dragonflybsd.org/pipermail/kernel/attachments/20100123/b9178e02/attachment-0020.bin>
More information about the Kernel
mailing list